Port 27017 (MongoDB)

TCP

MongoDB Database Server — MongoDB listens on port 27017 by default.

What is Port 27017?

Port 27017 is the default port for MongoDB, the most popular NoSQL document database. MongoDB stores data as flexible JSON-like documents (BSON), making it ideal for applications with evolving data schemas.

MongoDB on port 27017 accepts client connections for CRUD operations, aggregation pipelines, and database administration. It supports features including replica sets for high availability, sharding for horizontal scaling, and change streams for real-time data processing. The MongoDB wire protocol is binary-based for efficiency.

MongoDB with default settings and no authentication has led to thousands of data breaches. Always enable authentication (SCRAM-SHA-256), bind to specific interfaces, use TLS encryption, and implement role-based access control. The ransomware attacks on open MongoDB instances in 2017 demonstrated the importance of proper security configuration.

Port 27017 Security

MongoDB with default configuration (no authentication, bound to all interfaces) has led to over 100,000 database instances being compromised. Attackers scan for open MongoDB ports and steal or ransom the data within minutes of discovery.

Essential security measures: enable authentication (--auth flag), create admin and application-specific users with minimal privileges, bind to localhost or specific IPs (bindIp), enable TLS/SSL for connections, use SCRAM-SHA-256 authentication, enable audit logging, and implement network segmentation. Regularly audit user permissions and monitor for unauthorized access.

How to Check Port 27017

To check if port 27017 is open on a remote host, use nmap: 'nmap -p 27017 hostname'. For a quick TCP connection test, use: 'telnet hostname 27017' or 'nc -zv hostname 27017'. On Windows PowerShell, use: 'Test-NetConnection -ComputerName hostname -Port 27017'.

To check if port 27017 is listening on your local machine, use: 'netstat -tlnp | grep 27017' on Linux, or 'ss -tlnp | grep 27017'. On Windows, use: 'netstat -an | findstr 27017'. For a comprehensive scan, use: 'nmap -sV -p 27017 hostname' to detect the service version running on the port.

Related Ports

Port 27018 (MongoDB Shard) Port 28017 (MongoDB Web) Port 3306 (MySQL) Port 5432 (PostgreSQL) Port 6379 (Redis)

Frequently Asked Questions

What is port 27017 used for?

Port 27017 is the default port for MongoDB Database Server (MongoDB). It is used for mongodb communication using the TCP protocol.

Is port 27017 TCP or UDP?

Port 27017 uses TCP. TCP is used because mongodb requires reliable, ordered data delivery.

Should port 27017 be open?

Port 27017 should only be open if you are actively running MongoDB. Close unused ports to reduce your attack surface. If needed, restrict access to trusted IP addresses using firewall rules.

How do I check if port 27017 is open?

Use 'nmap -p 27017 hostname' to scan remotely, or 'netstat -tlnp | grep 27017' to check locally on Linux. On Windows, use 'Test-NetConnection -Port 27017 hostname' in PowerShell.

How do I secure port 27017?

Secure port 27017 by restricting access with firewall rules, using encryption (TLS/SSL) where supported, keeping MongoDB updated, using strong authentication, and monitoring for unauthorized access attempts.

🔍 Check Your IP Address

While you're here, find out your public IP address, location, and ISP details instantly.

Check My IP →

Related Tools

Port Reference
Complete network port database
Port Scanner
Scan ports on any host
SSL Check
Verify SSL certificate status
HTTP Headers
View HTTP response headers
Traceroute
Trace network route to host
Speed Test
Test your internet speed